Email Security Blog

Analysis: Symantec’s Internet Security Threat Report 2014

John Wilson June 16, 2014 DMARC
Fallback Featured Image
I recently read Symantec’s “Internet Security Threat Report 2014 :: Volume 19“. Many of the report’s findings are not in the least bit surprising, for example, the continued use of social engineering as a means to gain access. In one section Symantec compares company size against the likelihood of a spear-phishing campaign; as it turns out, larger companies are more likely to have their employees targeted. I wonder if there might be a bit of sample bias here; after all, a larger company is more likley to have the resources to implement solutions to detect such attacks.

 

Overall I found the report to be quite thorough; however, I do have one complaint. The report mentions email 117 times, yet does not once mention the DMARC standard. I find this disappointing, especially in light of Symantec’s recent implementation of DMARC policy enforcement for Message Labs. Many of the email-borne threats discussed in the report can be prevented by DMARC. Surely “Implement DMARC policy enforcement on inbound email” should have made it into the “Best Practices” section.

 

I hope that Symantec’s next Internet Security Threat Report will leverage data from Message Labs to provide insight into the number and types of threats prevented by the DMARC standard.

Leave a Reply

Your email will not be published. All fields are required.

Agari Blog Image

April 17, 2019 Fareed Bukhari

The Time is Now: Underscoring the Importance of DMARC for State and Local Governments

Scammers know that impersonating a trusted government agency is an extremely effective way to trick…

Agari Blog Image

February 26, 2019 Armen Najarian

Retail Trails Other Sectors in Adopting DMARC for Phishing Prevention

Recent research by the Agari Cyber Intelligence Division finds that the retail industry is dead…

Person Looking at DMARC Protected Email

February 19, 2019 Fareed Bukhari

DMARC Adoption Up, But 85% of Fortune 500 Remains Vulnerable to Brand Hijacking

Adoption of Domain-based Message Authentication, Reporting, and Conformance (DMARC) has seen modest growth in recent…

Agari Blog Image

October 16, 2018 Fareed Bukhari

One Year Later: Federal Mandate for Email Authentication Huge Success

Responding to BOD 18-01, agencies rally to complete the fastest sector-wide adoption of DMARC One…

Agari Blog Image

October 16, 2018 Patrick Peterson

DMARC: A 12-Month Triumph for DHS—and the Nation

Today is the deadline set by the Department of Homeland Security for all executive branch…

mobile image